Re: [PATCH] OpenVPN: Valid til days is required with OpenVPN-2.4.x

Hi Michael, yes i think 730 days are a good default. Patch is already made. Can you merge the already delivered one so i can pull the actual state and make then an own patch for this ?

Best,

Erik

Am Montag, den 18.06.2018, 14:51 +0100 schrieb Michael Tremer:

I think that a reasonable default would be 2 years.

That is already the maximum I would feel comfortable with, but certificates *must* expire. They should not run for forever.

But I agree with Tom that there should be an easy way to extend the certificate and that we should have some UI elements that warn when a certificate is going to expire in the next ~30 days or so.

@Erik: Would you be up for implementing this?

Best, -Michael